Messages

1

23.1 Legacy Series / Re: IPSEC no log in web UI but on disk

« on: February 08, 2023, 04:42:00 pm »

Yea, that was it.
In the web ui the defauölt setting was to only display critical errors...

Shame on me (or the one who did choose this as default setting  )

2

23.1 Legacy Series / IPSEC no log in web UI but on disk

« on: February 08, 2023, 04:00:38 pm »

Hello,

we did just install a new Opnsense firewall 1-2 weeks ago with the latest 22.x release.
We did then upgrade it to 23.1 and just yesterday to 23.1_6

Now we did activate an ipsec connection, which is working as expected.

But in the WebUI we don't see any logs in the "VPN:IPsec:Log file"
When I ssh to the system, then I see the ip log file in the filesystem, including content

/var/log/ipsec # ls -l
total 41
-rw-------  1 root  wheel  211333 Feb  8 15:59 ipsec_20230208.log
lrwxr-x---  1 root  wheel      33 Feb  8 15:01 latest.log -> /var/log/ipsec/ipsec_20230208.log

Any ideas why these logs are not shown in the web UI and how to fix it?

PS: The system has been installed with zfs as file system

3

22.1 Legacy Series / Re: No access to webui and ssh after 12-48 hours

« on: June 09, 2022, 09:33:48 am »

Looks like it's related to the /var file system beeing mounted as RAM file system.
We did now disable most logging and told the system to use /var on the SDD instead.

4

22.1 Legacy Series / Re: No access to webui and ssh after 12-48 hours

« on: June 09, 2022, 09:17:47 am »

We have found the probable cause, seems like there is some memory leak eating up all memory.
So I will search the formu for that issue, wehich seems to exist in some cases

5

22.1 Legacy Series / No access to webui and ssh after 12-48 hours

« on: June 03, 2022, 03:04:07 pm »

Hello,

we had a 21.x FW running at a client site which was stable.

The customer did then move to a new location and we did upgrade the FW to 22.1 and also added a VLAN 100 on the internal network (LAN) port.

This works fine so far, but after 12-48 hours, it's no longer possible to correct to the webui, ssh and also incomming OpenVPN connections no loger work.

We did then replace the hardware and did restore the config from the other box.
But unfortunally the problem is also present on the new hardware.
Any idea how to track down that problem?
The logs are usually empty after a reboot.

If we login via ssh session after a reboot it looks on, but once the webui connections no longer work, the ssh connection is still open, I hat hit enter and it gives a new line, but staring a command like top just hangs the prompt

----------------------------------------------
|      Hello, this is OPNsense 22.1          |         @@@@@@@@@@@@@@@
|                                            |        @@@@         @@@@
| Website:      https://opnsense.org/        |         @@@\\\   ///@@@
| Handbook:     https://docs.opnsense.org/   |       ))))))))   ((((((((
| Forums:       https://forum.opnsense.org/  |         @@@///   \\\@@@
| Code:         https://github.com/opnsense  |        @@@@         @@@@
| Twitter:      https://twitter.com/opnsense |         @@@@@@@@@@@@@@@
----------------------------------------------

*** firewall.xxxxxx.local: OPNsense 22.1.8_1 (amd64/OpenSSL) ***

 LAN (re0)       -> v4: 10.0.0.1/24
 WAN (re2)       -> v4/DHCP4: xxxxxxx24
                    v6/DHCP6: xxxxxxxxxxxx/64
 WLANGuest (vlan01) -> v4: 192.168.132.1/24


  0) Logout                              7) Ping host
  1) Assign interfaces                    Shell
  2) Set interface IP address            9) pfTop
  3) Reset the root password            10) Firewall log
  4) Reset to factory defaults          11) Reload all services
  5) Power off system                   12) Update from console
  6) Reboot system                      13) Restore a backup

Enter an option: 8

root@firewall:~ #
root@firewall:~ #
root@firewall:~ # top
^C



Also here a CTRL+C does not do anything...
The old box was with the ufs filesystem, on the new box we did use zfs...